Single sign-on is supposed to enhance corporate security, but it’s essential that cloud vendors have the information security team’s back.